Deprecated: The each() function is deprecated. This message will be suppressed on further calls in /home/zhenxiangba/zhenxiangba.com/public_html/phproxy-improved-master/index.php on line 456
JP7654404B2 - 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー - Google Patents
[go: Go Back, main page]

JP7654404B2 - 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー - Google Patents

完全性監視及びネットワーク侵入検出のための属性ベースのポリシー Download PDF

Info

Publication number
JP7654404B2
JP7654404B2 JP2020546891A JP2020546891A JP7654404B2 JP 7654404 B2 JP7654404 B2 JP 7654404B2 JP 2020546891 A JP2020546891 A JP 2020546891A JP 2020546891 A JP2020546891 A JP 2020546891A JP 7654404 B2 JP7654404 B2 JP 7654404B2
Authority
JP
Japan
Prior art keywords
host
link
attribute
quarantine
policy
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2020546891A
Other languages
English (en)
Japanese (ja)
Other versions
JP2021515498A (ja
Inventor
エリーザ コスタンテ
Original Assignee
フォアスカウト テクノロジーズ インコーポレイテッド
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from NL2020552A external-priority patent/NL2020552B1/en
Priority claimed from NL2020632A external-priority patent/NL2020632B1/nl
Priority claimed from NL2020635A external-priority patent/NL2020635B1/nl
Priority claimed from NL2020633A external-priority patent/NL2020633B1/nl
Priority claimed from NL2020634A external-priority patent/NL2020634B1/nl
Application filed by フォアスカウト テクノロジーズ インコーポレイテッド filed Critical フォアスカウト テクノロジーズ インコーポレイテッド
Publication of JP2021515498A publication Critical patent/JP2021515498A/ja
Application granted granted Critical
Publication of JP7654404B2 publication Critical patent/JP7654404B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/145Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Virology (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
JP2020546891A 2018-03-08 2019-03-07 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー Active JP7654404B2 (ja)

Applications Claiming Priority (11)

Application Number Priority Date Filing Date Title
NL2020552 2018-03-08
NL2020552A NL2020552B1 (en) 2018-03-08 2018-03-08 Attribute-based policies for integrity monitoring and network intrusion detection
NL2020633 2018-03-20
NL2020632A NL2020632B1 (en) 2018-03-20 2018-03-20 Attribute-based policies for integrity monitoring and network intrusion detection
NL2020632 2018-03-20
NL2020635 2018-03-20
NL2020635A NL2020635B1 (en) 2018-03-20 2018-03-20 Attribute-based policies for integrity monitoring and network intrusion detection
NL2020634 2018-03-20
NL2020633A NL2020633B1 (en) 2018-03-20 2018-03-20 Attribute-based policies for integrity monitoring and network intrusion detection
NL2020634A NL2020634B1 (en) 2018-03-20 2018-03-20 Attribute-based policies for integrity monitoring and network intrusion detection
PCT/NL2019/050147 WO2019172762A1 (en) 2018-03-08 2019-03-07 Attribute-based policies for integrity monitoring and network intrusion detection

Publications (2)

Publication Number Publication Date
JP2021515498A JP2021515498A (ja) 2021-06-17
JP7654404B2 true JP7654404B2 (ja) 2025-04-01

Family

ID=66641441

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2020546891A Active JP7654404B2 (ja) 2018-03-08 2019-03-07 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー

Country Status (6)

Country Link
US (3) US11641370B2 (he)
EP (1) EP3763099B1 (he)
JP (1) JP7654404B2 (he)
AU (1) AU2019232391B2 (he)
IL (1) IL276895B2 (he)
WO (1) WO2019172762A1 (he)

Families Citing this family (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4000232A4 (en) * 2019-07-15 2023-04-12 ICS Security (2014) Ltd. System and method for protection of an ics network by an hmi server therein
US11956265B2 (en) * 2019-08-23 2024-04-09 BitSight Technologies, Inc. Systems and methods for inferring entity relationships via network communications of users or user devices
US12192175B2 (en) * 2019-12-20 2025-01-07 Cisco Technology, Inc. Intent-based security for industrial IoT devices
US11729210B2 (en) * 2020-04-17 2023-08-15 Cisco Technology, Inc. Detecting spoofing in device classification systems
EP4184875A4 (en) * 2020-07-15 2023-12-27 Panasonic Intellectual Property Corporation of America COMMUNICATIONS MONITORING METHOD AND COMMUNICATIONS MONITORING SYSTEM
US12309206B2 (en) * 2020-08-09 2025-05-20 Ericom Software Ltd. System and method for creating access control policies for individual users, user groups, network host or network host groups through network traffic analysis
JP7577492B2 (ja) * 2020-09-23 2024-11-05 キヤノン株式会社 情報処理装置、情報処理方法、及びプログラム
US11895128B2 (en) 2021-01-15 2024-02-06 Bank Of America Corporation Artificial intelligence vulnerability collation
US11683335B2 (en) 2021-01-15 2023-06-20 Bank Of America Corporation Artificial intelligence vendor similarity collation
US11757904B2 (en) * 2021-01-15 2023-09-12 Bank Of America Corporation Artificial intelligence reverse vendor collation
US12113809B2 (en) 2021-01-15 2024-10-08 Bank Of America Corporation Artificial intelligence corroboration of vendor outputs
US12047355B2 (en) * 2021-03-08 2024-07-23 Adobe Inc. Machine learning techniques for mitigating aggregate exposure of identifying information
US12519792B2 (en) * 2021-03-15 2026-01-06 Circle Media Labs Inc. Internet access filtering systems and methods
US12242600B2 (en) * 2021-05-13 2025-03-04 Microsoft Technology Licensing, Llc Abnormally permissive role definition detection systems
US11544123B1 (en) * 2021-06-28 2023-01-03 Anurag Singla Systems and methods for detecting partitioned and aggregated novel network, user, device and application behaviors
US12034758B2 (en) * 2021-09-14 2024-07-09 The Mitre Corporation Optimizing network microsegmentation policy for cyber resilience
CN116074190B (zh) * 2021-10-29 2026-03-03 华为技术有限公司 网络配置特征提取方法及相关装置
CN118214578A (zh) * 2022-12-15 2024-06-18 特灵国际有限公司 建筑物自动化系统的反应式网络安全
US20240236098A1 (en) * 2022-12-23 2024-07-11 KnowBe4, Inc. Blocklist generation system based on reported threats
US12335279B2 (en) * 2023-01-10 2025-06-17 Cisco Technology, Inc. Blocking and alerting with domain fronting intelligence
US20250272422A1 (en) * 2024-02-26 2025-08-28 Microsoft Technology Licensing, Llc Deduplicating role-based access control policies using symbolic abstraction models and satisfiability solver models
US20260006050A1 (en) * 2024-06-28 2026-01-01 F5, Inc. Methods and devices for enhancing security protection for a network service device

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014522167A (ja) 2011-07-26 2014-08-28 セキュリティー マターズ ベスローテン フェンノートシャップ データ通信ネットワークにおいてプロトコルメッセージを分類するための方法およびシステム
US20160006753A1 (en) 2013-02-22 2016-01-07 Adaptive Mobile Security Limited System and Method for Embedded Mobile (EM)/Machine to Machine (M2M) Security, Pattern Detection, Mitigation

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1986391A1 (en) * 2007-04-23 2008-10-29 Mitsubishi Electric Corporation Detecting anomalies in signalling flows
US8844033B2 (en) * 2008-05-27 2014-09-23 The Trustees Of Columbia University In The City Of New York Systems, methods, and media for detecting network anomalies using a trained probabilistic model
US9886581B2 (en) * 2014-02-25 2018-02-06 Accenture Global Solutions Limited Automated intelligence graph construction and countermeasure deployment
US10122740B1 (en) * 2015-05-05 2018-11-06 F5 Networks, Inc. Methods for establishing anomaly detection configurations and identifying anomalous network traffic and devices thereof
US9923911B2 (en) * 2015-10-08 2018-03-20 Cisco Technology, Inc. Anomaly detection supporting new application deployments
US10812497B2 (en) * 2015-12-07 2020-10-20 Prismo Systems Inc. Systems and methods for detecting and responding to security threats using application execution and connection lineage tracing
US10375143B2 (en) * 2016-08-26 2019-08-06 Cisco Technology, Inc. Learning indicators of compromise with hierarchical models
WO2018133992A1 (en) * 2017-01-18 2018-07-26 British Telecommunications Public Limited Company Management of federated systems
US10439985B2 (en) * 2017-02-15 2019-10-08 Edgewise Networks, Inc. Network application security policy generation

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014522167A (ja) 2011-07-26 2014-08-28 セキュリティー マターズ ベスローテン フェンノートシャップ データ通信ネットワークにおいてプロトコルメッセージを分類するための方法およびシステム
US20160006753A1 (en) 2013-02-22 2016-01-07 Adaptive Mobile Security Limited System and Method for Embedded Mobile (EM)/Machine to Machine (M2M) Security, Pattern Detection, Mitigation

Also Published As

Publication number Publication date
US11641370B2 (en) 2023-05-02
WO2019172762A9 (en) 2020-04-09
IL276895B2 (he) 2024-10-01
WO2019172762A1 (en) 2019-09-12
US11949704B2 (en) 2024-04-02
IL276895B1 (he) 2024-06-01
US20240340299A1 (en) 2024-10-10
CA3092260A1 (en) 2019-09-12
AU2019232391A8 (en) 2020-10-01
IL276895A (he) 2020-10-29
JP2021515498A (ja) 2021-06-17
EP3763099C0 (en) 2024-05-01
AU2019232391A1 (en) 2020-09-17
EP3763099A1 (en) 2021-01-13
EP3763099B1 (en) 2024-05-01
US20200404010A1 (en) 2020-12-24
US20230254328A1 (en) 2023-08-10
AU2019232391B2 (en) 2024-06-20

Similar Documents

Publication Publication Date Title
JP7654404B2 (ja) 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー
US20240414190A1 (en) System and method for utilizing large language models for mitigation of cyber threats and remediation or restoration of functionality of a cybersecurity system
US12519831B2 (en) Artificial intelligence adversary red team
US12463985B2 (en) Endpoint agent client sensors (cSENSORS) and associated infrastructures for extending network visibility in an artificial intelligence (AI) threat defense environment
US20240403420A1 (en) System and method for adjusting or creating ai models based on model breach alerts
US20220201042A1 (en) Ai-driven defensive penetration test analysis and recommendation system
CN110602041A (zh) 基于白名单的物联网设备识别方法、装置及网络架构
US11683336B2 (en) System and method for using weighting factor values of inventory rules to efficiently identify devices of a computer network
US12401581B2 (en) Entity attribute designation based on logic programming
EP4154136A1 (en) Endpoint client sensors for extending network visibility
US20250323930A1 (en) System and method for modeling and prioritization of attack paths in network environments
US20210099479A1 (en) System and method for using inventory rules to identify devices of a computer network
WO2024115310A1 (en) Monitoring system
CA3092260C (en) Attribute-based policies for integrity monitoring and network intrusion detection
NL2020635B1 (en) Attribute-based policies for integrity monitoring and network intrusion detection
NL2020552B1 (en) Attribute-based policies for integrity monitoring and network intrusion detection
NL2020633B1 (en) Attribute-based policies for integrity monitoring and network intrusion detection
NL2020634B1 (en) Attribute-based policies for integrity monitoring and network intrusion detection
NL2020632B1 (en) Attribute-based policies for integrity monitoring and network intrusion detection
Mahmood et al. Enhancing Network Security: A Study on Classification Models for Intrusion Detection Systems
Meckl Cybersecurity Incident Response Orchestration Using Agile Cognitive Assistants

Legal Events

Date Code Title Description
A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20201112

A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20220303

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20230327

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20230424

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20230724

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20230925

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20231024

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20240115

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20240415

A601 Written request for extension of time

Free format text: JAPANESE INTERMEDIATE CODE: A601

Effective date: 20240617

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20240716

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20241017

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20250117

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20250217

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20250319

R150 Certificate of patent or registration of utility model

Ref document number: 7654404

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150